CVE-2026-26236

A missing authorization vulnerability has been reported to affect QuMagie. The remote attackers can then exploit the vulnerability to access unauthorized data or perform unauthorized actions. We have already fixed the vulnerability in the following version: QuMagie 2.9.0 and later...

CVE-2025-62857

A cross-site scripting XSS vulnerability has been reported to affect QuMagie. The remote attackers can then exploit the vulnerability to bypass security mechanisms or read application data. We have already fixed the vulnerability in the following version: QuMagie 2.8.1 and later...

EUVD-2023-51670

Malicious code in bioql PyPI...

EUVD-2023-51671

Malicious code in bioql PyPI...

EUVD-2023-43027

Malicious code in bioql PyPI...

CVE-2024-38642

An improper certificate validation vulnerability has been reported to affect QuMagie. If exploited, the vulnerability could allow local network users to compromise the security of the system via unspecified vectors. We have already fixed the vulnerability in the following version: QuMagie 2.3.1 a...

CVE-2023-47560

An OS command injection vulnerability has been reported to affect QuMagie. If exploited, the vulnerability could allow authenticated users to execute commands via a network. We have already fixed the vulnerability in the following version: QuMagie 2.2.1 and later...

CVE-2023-39295

An OS command injection vulnerability has been reported to affect QuMagie. If exploited, the vulnerability could allow authenticated users to execute commands via a network. We have already fixed the vulnerability in the following version: QuMagie 2.1.3 and later...

CVE-2023-41284

A SQL injection vulnerability has been reported to affect QuMagie. If exploited, the vulnerability could allow authenticated users to inject malicious code via a network. We have already fixed the vulnerability in the following version: QuMagie 2.1.4 and later...

QNAP QuMagie 信任管理问题漏洞

QNAP Systems QuMagie is a QTS photo management application from China Weilian Technology QNAP Systems. A trust management issue vulnerability exists in QNAP QuMagie version 2.3.1 and prior versions, which stems from the inclusion of an incorrect certificate validation vulnerability. An attacker w...

CVE-2023-47560 QuMagie

An OS command injection vulnerability has been reported to affect QuMagie. If exploited, the vulnerability could allow authenticated users to execute commands via a network. We have already fixed the vulnerability in the following version: QuMagie 2.2.1 and later...

PT-2024-2530 · Qumagie · Qumagie

Name of the Vulnerable Software and Affected Versions: QuMagie versions prior to 2.2.1 Description: The issue is related to an OS command injection vulnerability. It could allow an authenticated user to execute commands via a network. This vulnerability exists due to the lack of measures to...

CVE-2023-39295

An OS command injection vulnerability has been reported to affect QuMagie. If exploited, the vulnerability could allow authenticated users to execute commands via a network. We have already fixed the vulnerability in the following version: QuMagie 2.1.3 and later...

PT-2023-27883 · Qumagie · Qumagie

Name of the Vulnerable Software and Affected Versions: QuMagie versions prior to 2.1.4 Description: A SQL injection issue has been reported, potentially allowing authenticated users to inject malicious code via a network. Recommendations: For versions prior to 2.1.4, update to QuMagie 2.1.4 or...